var createError = require('http-errors');
var express = require('express');
var path = require('path');
var cookieParser = require('cookie-parser');
var logger = require('morgan');

var indexRouter = require('./routes/index');
var usersRouter = require('./routes/users');
const UserRouter = require('./routes/admin/UserRouter');
const JWT = require('./utils/JWT');

var app = express();

// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'jade');

app.use(logger('dev'));
app.use(express.json());
app.use(express.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));

app.use('/', indexRouter);
app.use('/adminapi/users', usersRouter);

//验证token
app.use((req, res, next) => {
  if (req.url === '/adminapi/users/login') {
    next();
    return;
  }
  //如果token有效，则继续向后执行
  const token = req.headers['authorization'].split(' ')[1];
  if (token) {
    const payload = JWT.verify(token);
    if (payload) {
      //如果token有效，则重新生成新的token并返回给前端
      const newToken = JWT.generate({
        id: payload.id,
        username: payload.username
      }, '1d');
      res.header('Authorization', newToken)
      next();
      return;
    } else {
      res.status(401).send({
        code: 401,
        msg: '无效的token'
      });
      return;
    }

  }
  //如果token无效，则返回错误信息
  next();
}
)

/**
 * /admin/api 后台管理接口
 * /api 前端接口
 */
app.use(UserRouter)



// catch 404 and forward to error handler
app.use(function (req, res, next) {
  next(createError(404));
});

// error handler
app.use(function (err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message;
  res.locals.error = req.app.get('env') === 'development' ? err : {};

  // render the error page
  res.status(err.status || 500);
  res.render('error');
});

module.exports = app;
